8191206bf94d84d4907fd476f45686aebd87b48aec0650ae9688ecf546c30611

Sharing

Copy URL Twitter E-mail

General

Target

8191206bf94d84d4907fd476f45686aebd87b48aec0650ae9688ecf546c30611
Size

200KB
MD5

b1348ca66d7008d171d08658bd0597b2
SHA1

3e6ae94eb2604d857c2a2573ab09228e42a041c9
SHA256

8191206bf94d84d4907fd476f45686aebd87b48aec0650ae9688ecf546c30611
SHA512

0cfd4899d6ea51b38cd9be2a39f1f56ab7ee783c6ec960b529cd11437a4539d89461b226996d43fc6bcb0115acf423f6407af7dc4fb11768c4773169610ffffa
SSDEEP

3072:MpWublibF0drug5A1d6q97Kbf3pnD1GeJ07nEloeu1o8zTZ9i9XnBiZCyL2:8WTFOno197Kl5Gu074oS8HkXBiZC

Score

N/A

Malware Config

Signatures

Files

8191206bf94d84d4907fd476f45686aebd87b48aec0650ae9688ecf546c30611
.exe windows x86

61201595bdc901d3e74f253afa5457ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameW
lstrlenW
RemoveDirectoryW
SetComputerNameA
CreateMailslotW
IsBadStringPtrA
OpenSemaphoreA
GetCurrentThreadId
GetExpandedNameA
MulDiv
GetEnvironmentStringsW
Sleep
LocalFree
CreateNamedPipeA
lstrcpynA
GlobalDeleteAtom
FileTimeToLocalFileTime
GetComputerNameA
GetTimeFormatW
GetSystemDirectoryW
GetVersion
CreateDirectoryA
GetExitCodeProcess
lstrcmpi
SetComputerNameW
CreateFileA
ReadDirectoryChangesW
GetUserDefaultLCID
GetLongPathNameA
GetFileSize
SuspendThread
DisconnectNamedPipe
EndUpdateResourceW
CreateMailslotA
TlsAlloc
MultiByteToWideChar
GetProcAddress
GetHandleInformation
Beep
GetModuleHandleA
ExpandEnvironmentStringsA
GetCommandLineW
GetThreadPriority
GetUserDefaultLangID
lstrcpyn
EnumCalendarInfoW
OpenMutexA

user32

LoadBitmapW
DrawTextA
GetWindowTextLengthW
CreateAcceleratorTableA
PeekMessageW
GetDC
CreateDesktopA
CreatePopupMenu
GetMenuItemInfoW
GetClassInfoExW
CreateIcon
LoadMenuIndirectW
CreateDialogIndirectParamW
UnregisterClassW
SendMessageW
SendDlgItemMessageA
WinHelpW
GetMessageA
CreateWindowExW
DestroyCursor
ClientToScreen
wsprintfA
GetKeyboardType
CopyIcon
GetCaretPos

gdi32

CreateMetaFileA
PolyPolyline
CreateEnhMetaFileW
PolyBezierTo
GetTextFaceW
GetDCBrushColor
GetEnhMetaFileBits
CreatePolygonRgn
GetPixel
GetCurrentObject
SwapBuffers
UpdateColors
EndPage

advapi32

RegDeleteKeyW
RegReplaceKeyW
RegDeleteValueW
RegCreateKeyW
RegRestoreKeyA

comctl32

ImageList_DrawEx
ImageList_Draw
DestroyPropertySheetPage
CreateStatusWindowA
ImageList_Add

ole32

CoGetMalloc
GetClassFile
CoGetInstanceFromFile
StringFromCLSID
CoInitializeEx

setupapi

SetupDiClassNameFromGuidExA
CM_Query_And_Remove_SubTree_ExA
CM_Get_Class_Key_Name_ExW
SetupTerminateFileLog
CM_Add_Range
pSetupStringTableAddString
SetupDiInstallClassW
SetupUninstallOEMInfA
SetupDiInstallClassExW
SetupDiBuildClassInfoListExW

winmm

midiStreamPause
mciDriverYield
midiOutReset
midiInGetNumDevs
wid32Message

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.obGGAK
Size: 1KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DrfvwF
Size: 3KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.piHM
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsj
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fKOd
Size: 1024B - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61201595bdc901d3e74f253afa5457ae

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

ole32

setupapi

winmm

Sections

.text Size: 12KB - Virtual size: 11KB

.obGGAK Size: 1KB - Virtual size: 17KB

.DrfvwF Size: 3KB - Virtual size: 30KB

.piHM Size: 2KB - Virtual size: 2KB

.data Size: 14KB - Virtual size: 13KB

.rsj Size: 512B - Virtual size: 7KB

.fKOd Size: 1024B - Virtual size: 277KB

.rsrc Size: 163KB - Virtual size: 162KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.obGGAK
Size: 1KB - Virtual size: 17KB

.DrfvwF
Size: 3KB - Virtual size: 30KB

.piHM
Size: 2KB - Virtual size: 2KB

.data
Size: 14KB - Virtual size: 13KB

.rsj
Size: 512B - Virtual size: 7KB

.fKOd
Size: 1024B - Virtual size: 277KB

.rsrc
Size: 163KB - Virtual size: 162KB

.reloc
Size: 1KB - Virtual size: 1KB